On November 24, 2015, the Committee on Payments and Market Infrastructures and the Board of the International Organization of Securities Commissions published a consultation paper related to guidance on cyber resilience for Financial Market Infrastructures. The guidance aims to encourage FMIs to pre-empt and respond rapidly to cyber-attacks and deals with five primary risk management categories that are significant for the cyber resilience of FMIs: (i) governance; (ii) identification; (iii) protection; (iv) detection; and (v) response and recovery. The guidance states that continuous improvements to systems must be made to maximize cyber resilience, that it is imperative for FMIs to resume operations rapidly and safely after a successful cyber-attack and that senior management attention is critical to cyber resilience strategy. Comments on the consultation are due by February 23, 2016.
The consultation is available at: http://www.bis.org/cpmi/publ/d138.pdf.